summaryrefslogtreecommitdiff
path: root/sshd.8
diff options
context:
space:
mode:
Diffstat (limited to 'sshd.8')
-rw-r--r--sshd.816
1 files changed, 10 insertions, 6 deletions
diff --git a/sshd.8 b/sshd.8
index 62615bf6d..e6a900b06 100644
--- a/sshd.8
+++ b/sshd.8
@@ -33,8 +33,8 @@
33.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 33.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
34.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 34.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35.\" 35.\"
36.\" $OpenBSD: sshd.8,v 1.272 2013/12/06 15:29:07 jmc Exp $ 36.\" $OpenBSD: sshd.8,v 1.273 2013/12/07 11:58:46 naddy Exp $
37.Dd $Mdocdate: December 6 2013 $ 37.Dd $Mdocdate: December 7 2013 $
38.Dt SSHD 8 38.Dt SSHD 8
39.Os 39.Os
40.Sh NAME 40.Sh NAME
@@ -175,7 +175,8 @@ The default is
175.Pa /etc/ssh/ssh_host_key 175.Pa /etc/ssh/ssh_host_key
176for protocol version 1, and 176for protocol version 1, and
177.Pa /etc/ssh/ssh_host_dsa_key , 177.Pa /etc/ssh/ssh_host_dsa_key ,
178.Pa /etc/ssh/ssh_host_ecdsa_key 178.Pa /etc/ssh/ssh_host_ecdsa_key .
179.Pa /etc/ssh/ssh_host_ed25519_key
179and 180and
180.Pa /etc/ssh/ssh_host_rsa_key 181.Pa /etc/ssh/ssh_host_rsa_key
181for protocol version 2. 182for protocol version 2.
@@ -280,7 +281,7 @@ though this can be changed via the
280.Cm Protocol 281.Cm Protocol
281option in 282option in
282.Xr sshd_config 5 . 283.Xr sshd_config 5 .
283Protocol 2 supports DSA, ECDSA and RSA keys; 284Protocol 2 supports DSA, ECDSA, ED25519 and RSA keys;
284protocol 1 only supports RSA keys. 285protocol 1 only supports RSA keys.
285For both protocols, 286For both protocols,
286each host has a host-specific key, 287each host has a host-specific key,
@@ -507,6 +508,7 @@ You don't want to type them in; instead, copy the
507.Pa identity.pub , 508.Pa identity.pub ,
508.Pa id_dsa.pub , 509.Pa id_dsa.pub ,
509.Pa id_ecdsa.pub , 510.Pa id_ecdsa.pub ,
511.Pa id_ed25519.pub ,
510or the 512or the
511.Pa id_rsa.pub 513.Pa id_rsa.pub
512file and edit it. 514file and edit it.
@@ -806,8 +808,8 @@ secret, but the recommended permissions are read/write/execute for the user,
806and not accessible by others. 808and not accessible by others.
807.Pp 809.Pp
808.It Pa ~/.ssh/authorized_keys 810.It Pa ~/.ssh/authorized_keys
809Lists the public keys (DSA/ECDSA/RSA) that can be used for logging in 811Lists the public keys (DSA, ECDSA, ED25519, RSA)
810as this user. 812that can be used for logging in as this user.
811The format of this file is described above. 813The format of this file is described above.
812The content of the file is not highly sensitive, but the recommended 814The content of the file is not highly sensitive, but the recommended
813permissions are read/write for the user, and not accessible by others. 815permissions are read/write for the user, and not accessible by others.
@@ -887,6 +889,7 @@ rlogin/rsh.
887.It Pa /etc/ssh/ssh_host_key 889.It Pa /etc/ssh/ssh_host_key
888.It Pa /etc/ssh/ssh_host_dsa_key 890.It Pa /etc/ssh/ssh_host_dsa_key
889.It Pa /etc/ssh/ssh_host_ecdsa_key 891.It Pa /etc/ssh/ssh_host_ecdsa_key
892.It Pa /etc/ssh/ssh_host_ed25519_key
890.It Pa /etc/ssh/ssh_host_rsa_key 893.It Pa /etc/ssh/ssh_host_rsa_key
891These files contain the private parts of the host keys. 894These files contain the private parts of the host keys.
892These files should only be owned by root, readable only by root, and not 895These files should only be owned by root, readable only by root, and not
@@ -898,6 +901,7 @@ does not start if these files are group/world-accessible.
898.It Pa /etc/ssh/ssh_host_key.pub 901.It Pa /etc/ssh/ssh_host_key.pub
899.It Pa /etc/ssh/ssh_host_dsa_key.pub 902.It Pa /etc/ssh/ssh_host_dsa_key.pub
900.It Pa /etc/ssh/ssh_host_ecdsa_key.pub 903.It Pa /etc/ssh/ssh_host_ecdsa_key.pub
904.It Pa /etc/ssh/ssh_host_ed25519_key.pub
901.It Pa /etc/ssh/ssh_host_rsa_key.pub 905.It Pa /etc/ssh/ssh_host_rsa_key.pub
902These files contain the public parts of the host keys. 906These files contain the public parts of the host keys.
903These files should be world-readable but writable only by 907These files should be world-readable but writable only by